Eric Shoemaker on Establishing the Value of a Cybersecurity Compliance Program [Podcast] - podcast episode cover

Eric Shoemaker on Establishing the Value of a Cybersecurity Compliance Program [Podcast]

Compliance Perspectives
May 06, 202514 min
--:--
--:--
Listen in podcast apps:
Apple Podcasts
Spotify
Download
YouTube
Overcast
Pocket Casts
Episodes.fm
Download Metacast podcast app
Listen to this episode in Metacast mobile app
Don't just listen to podcasts. Learn from them with transcripts, summaries, and chapters for every episode. Skim, search, and bookmark insights. Learn more

Episode description

By Adam Turteltaub

How much is your cybersecurity program worth? Traditionally the thinking has kind of been: if we don’t have a breach it’s expensive but valuable, and if we do have one it’s both expensive and worthless.

Eric Shoemaker of Genius GRC advocates for a different way to value cybersecurity efforts. Instead of just looking at what it prevents, also look at what it enables: your organization to do business with less friction. A good cybersecurity  program give customers the confidence that you are safe to do business with. It prevents business interruptions, and doesn’t get too much in the way of the business.

So track things like deals successfully closed after reviewing the company’s cyber defenses.

He also argues for using near misses as a way to demonstrate value. Each incident provides an opportunity to examine what could have gone wrong, what controls worked, and what enhancements could be made to strengthen them.

Listen in to learn more about how you can establish the value of your cyber protection efforts.

Listen now

Sponsored by Case IQ, a global provider of whistleblowing, case management, and compliance solutions.

For the best experience, listen in Metacast app for iOS or Android